diff --git a/docs/ref/csrf.txt b/docs/ref/csrf.txt index 9e682ec6aea..70d2019f656 100644 --- a/docs/ref/csrf.txt +++ b/docs/ref/csrf.txt @@ -205,6 +205,9 @@ both is fine, and will incur minimal overhead. # ... return render(request, "a_template.html", c) + If you are using class-based views, you can refer to + :ref:`Decorating class-based views`. + Rejected requests ================= @@ -283,8 +286,10 @@ will require a CSRF token to be inserted you should use the @cache_page(60 * 15) @csrf_protect def my_view(request): - # ... + ... +If you are using class-based views, you can refer to :ref:`Decorating +class-based views`. Testing ======= @@ -327,6 +332,10 @@ section. Utilities --------- +The examples below assume you are using function-based views. If you +are working with class-based views, you can refer to :ref:`Decorating +class-based views`. + .. function:: csrf_exempt(view) This decorator marks a view as being exempt from the protection ensured by